503042-A-01-US (KAPPES) 
Serial No. 10/721,721 
Ryan, Mason & Lewis, LLP; K. M. Mason (203) 255-6560 

1/4 
FIG. 1 





tl 


115 




MOBILE 






COMPUTING 


AUTHENTICATOR 




DEVICE 










ENTERPRISE' 
NETWORK 



400 





AUTHENTICATION 




SERVER 






500-^ 


USER 




DATABASE 



FIG, 2 




115 



AUTHENTICATOR 



400 



AUTHENTICATION 
SERVER 



AUTHENTICATION PHASE - 210 



X 



115 



CONTENT 
AUTHENTICATOR 



CONTENT AUTHENHCATION PHASE - 220 




400 



CONTENT 
AUTHENTICATION 
SERVER 



503042-A-01-US (KAPPES) 
Serial No. 10/721.721 
Ryan, Mason & Lewis, LLP; K. tt. Mason (205) 255-6560 



FIG. 3 



2/4 



220 



350 



SYSTEM 
SERVICES 



CONTROLLED 
CONTENT PORT 



325 

UNCONTROLLED 
CONTENT PORT 



320 



\- CONTENT 
y\ UNAUTHORIZED 



L J 







360 



CONTENT 
INTEGRITY 
RESTORATION 
SERVICES 



210 



310 



CONTROLLED 
PORT 



PORT 
UNAUTHORIZED 



UNCONTROLLED 
PORT 



j315 



( 



120 



LAN 



FIG, 4 



TO/FROM 
NETWORK 
120 



AUTHENTICAHON SERVER 



PROCESSOR 




y-420 



MEMORY 



USER DATABASE 



DEVICE DATABASE 



/-500 

y-550 



AUTHENTICATION PROCESS 



400 



503042-A-01-US (KAPPES) 
Serial No. 10/721,721 
Ryan, Mason & Lewis, LLP; K. ^. Mason (203) 255-6560 



3/4 



S 



S 



LO 
I 

l-lJ 





































: 




: 


-<c 


lO 






Q_ 










to 


• • • 












1 ■ 1 


LO 




o-> 


Q_ 








>— 








ad 








CJ> 
















l_t_l 






oo 




1 — 






-ct 






-a: 


















Q:: 








I_lJ 








CO 






s 




S 

LO 


S 

o 


s 

LO 




o 








LO 


LO 


LO 



OO 
LO 



LO 



oo 



C-> I — 



LO 

to 



CO 



^ CJ> Li- 



LO 



s s s 

LO CD LO 

LO C£> CO 

LO LO LO 



503042-A-01-US (KAPPES) 
Serial No. 10/721,721 
Ryan, Mason & Lewis. LLP; K. M. Mason (203) 255-6560 



FIG. 6 



4/4 



CONTENT TOKEN MANAGEMENT PROCESS 600 
(CLIENT SIDE) 




630- 



!~ APPEND REASON AND ANY NETWORK IDENTIFIER "j 
^ " ! TO CONTENT AUTHENTICATION TOKEN • 



( END ) 



FIG, 7 



TOKEN-BASED AUTHENTICATION PROCESS 700 
(SERVER SIDE) 




720- 



OBTAIN CONTENT TOKEN 550 FROM DEVICE 



730 



740 



GRANT ACCESS TO 
CONTROLLED 
CONTENT PORT 



HAS 

CONTENT TOKEN 550 BEEN 
ALTERED OR DELETED 



I. 



750 



PROVIDE ACCESS TO 
UNCONTROLLED CONTENT 
PORT FOR CONTENT 
EVALUATION 



C END ) 



